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(54) Virtual smart card 

(57) Smart card technology is in the process of 
emerging as a fundamental advance in computer secu- 
rity. A Virtual S TOfl:Card:emutmes^ by 
providtno-an identicaj imertaceiand services. However, 
a Virtual Smart Card has no physical manifestation any 
smart card-aware application can seamtessry inter- 
operate wHhjrtheraiea^ 
Card. A VTrtijer Sr^ 
tected pnysi^ 
Smart Card iodrder to i 
tudSn^Card-^ 
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[0001] TheirwenttondeaJswrthSniart 
ogy. This technology is in the process erf emerging asa 
fundamental advance in computer security. As smart 6 
carts become commonplace, computer users wil enjoy 
the Mi benefits of crypto gr aphi c services without worry- 
tng about Heaping the confidentiality of their crypto- 
graphic Keys. 

10 

Background to the Invention 
Duplication Protected Media 

[0002] Amedtaissa* tobedupfcatiorv^ « 
is exceedingly difficult lor an unauthorized person to 
build an exact di*tfcate. Jxamptes of dupikartkxvpro- 
teded media afeTs^ Dongles, and norvrepro- 

ducaSeCD's. Optical Media Authenticity Verification: 
DiscGuard™. [http7/www.ttr.caU/dis<^rd.htm]. 20 
[0003] A Dongle in the past was a piece of hardware 
which can be connected to a Personal Computer PC. 
Those Dongles can be substituted by means desenbed 
in the Patent application EP97710011.4.A Dongle has 
an encryption key called the DongleKey. It is exceed- 2s 
ingly difficult to attack a Dongle and extract the Dongle- 
Key. For this reason, it is exceedingly difficult to build an 
exact copy of a Dongle. 

[0004] One can copy protect software with a Dongle 
using the technique illustrated in Figure 1 4. x 



1201: Theioftware verxtor-generatevatistcrf^n- 
oVxn ruirrt>efs. 

\202: The software vendor attaches a Dongle to his as 
or her machine and asks the Dongle to encrypt 
each random number using the DongleKey. The 
software vendor creates a table, e.g, 1203. c* the 
encrypt i on results. For example, when the Dongle 
encrypts the value 23928, the result is 90873. <o 
When the Dongle encrypts the value 98709 the 
result Is 98199. 

1204: The software vendor encodes the table into 
the software to be protected. The software includes 45 
code that axwnunicates with the Dongda This code 
instructs the protected software bom to execute 
steps 1206 through 121 1 . 

1205: The software vendor sends the protected so 
software to an end-user. 

1206: The end-user receives the protected soft- 
ware. Ufeon each execution, the software randomly 
chooses a value from the table, ag.. the third value 66 
is 89766. 

1207. The protected software sends the random 



value to the Dongle and requests encryption using 
the DongleKey, 

1208: The Dongle returns the encrypted vatoe, ag.. 
09876. 

1209: The protected software compares the result 
received from the Dongle with the expected value in 
the table, ff the comparison tails, then the end-user 
does not prove that he or she has the required Don- 
gle, and the program stops 1210. Otherwise, the 
proyam continues with its normal execution 121 1 
andperiodicaly repeats darting with etsp 1206. It 
is exceeefnejy dHficuft to perform the encryption 
step without the aid of the Dongle, because one 
cannot pertorm the encryption without first obtain- 
ing the DongleKey. 

Readeriess Device 

[0005] A readeriess device is a particular kind of dupli- 
cation-protected media that has no electronic connec- 
tion with a computer. For example, the Secure© 1 " 
device is a mobile device with an LED display. Periodi- 
cal ry (each minute or two) the mobile device performs a 
cryptographic operation and dteplays a new challenge 
key. It is exceedingly difficult to predict the next chal- 
lenge key before the next display. As a result, it is 
exceedingly difficult to duplicate the device. 
[0006] A similar function is implemented on a central 
server which generates the same sequence of chal- 
lenge keys while precisely synchronizing with the 
mobile device. The owner of the mobile device reads 
the LED display and sends the current chaBenge key to 
the central server. B the central 6erver validates thai the 
challenge key matches the one generated by the eerver 
during the current time period, then the central server 
authenticates the owner of the device. 

Smart Cant 

[Q007J_Bom an endnaert perspective, awnartcard 
has three^tates: ifuw, We, r and destroyed. A smart 
card is in-uee whenever the end-user inserts the smart 
card into his or her machine. An in-u& emart card can 
exe^ oyptctfrap^^ 

servtoec. An import** pro^ of a smart card is that it 
^stores cryptu gia phi c^ keW 1 ^^ - rendering? ft 
"imjX)S§ble~fcr-an-urw^^ 
aactdypfcate. Thus, a smart card is a duplication-pro- 
tected media. An idle smart card performs no services. 
A co mm on place to store an idle smart card is in an 
owner's pocket A destroyed smart card ie one that the 
owner m wp ia c e s a desfroys, *g.. the owner aodden- 
tafty drops the smart card between the cushions erf a 
couch. After searching tor the destroyed smart card the 
owner can either find the card or report the card as 
missing. The smart card issuing authority can either 



2 



BNSDOCID .£e_.053fo3G£i 



EP0936530A1 



88 8 



10 



replace the destooyed smart card with an identical copy, 
or initiate the lost smart card and issue a complete 
replacement. 

[0006] One promising apptatfton of Smart Cardtech- 
nology is license and copy protection (LCP) 
described in EP97710011.4. When the owner inserts 
his or her smart card, copy protected programs execute; 
and when the owner removes the smart card, the copy 
protected programs stop. So. the smart card acts as a 
"c*g>taJ ignition key the! serves an analogous purpose 
tothetgrtffenkeymanautorr^ 
ap p tart on of Smart Card technology is Internet 
authentication. The owner authenticates him or herself 
to a remote machine by proving that he or she has the 
required smart card. 

(0009] A problem with smart card technology is its 
inherent expense and logistic overhead. One cannot 
use a smart card untfl one physically attaches a compu- 
ter to a smart card reader. 

[001 0] This problem is been solved by the features of 
claim 1 and claim 10. 

[0011] The invention presents a bridge technology 
called Virtual Smart Card which emulates a real smart 
card by providing an identical interlace and collection of 
services. However, a Virtual Smart Card has no physi- 
cal manifestation Anv^TO ^cacdiawarLe^ application 
canrsefrViiels^^ smart 
ca^ro^f^v^ 

[001 2] Although a Virtual Smart Card has no physical 
manifestation, a Virtual Smart Card emulates all three 
of the real smart card's states. An owner can insert a 
Virtual Smart Card with the effect that the Virtual Smart 
Card's state changes from idle to irvuse. An owner can 
remove a Virtual Smart Card to change the state back 
from in-use to idle. After removing the virtual Smart 
Card from one machin e, the owner can potentieJry insert 
the Virtual Smart Card into a afferent machine The 
owner cannot insert the virtual Smart Card in the sec- 
ond machine until the owner removes the Vrtual Smart 
Card from the first machine. If the owner's machine 
crashes, the owner may potenoaty toee Ns or her Vir- 
tual Smart Card. In this case, the owner usuaty can 
recover the lost virtual Smart Card. However, in some 
rare cases, the Virtual Smart Card disappears and the 
owner must report the loss to the Virtual Smart Card 
issuing authority. The issuing authority responds in 
accordance to its poBcy, i.e., replacing the lost Virtual 
Smart Card with either an exact duplicate or a complete 
replacement. 

[0013] The issuing authority operates a central trusted 
server caled a Virtual Smart Card Server (VSC Server). 
The V^gSveFmSto 
Smart'CIrdfrindUfh?^ 
grapricjKe^A vlrtuWSmarT^^ 
insert operatioab^se^^ 

frahi&^K&^uafr medi- 
ates^the fi reoiiest f bv^f jr ^ 

=r ti^Vi5j^pSrria7^ vaii- 
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cte^iatlhere*)^^ 

in tie tote j^te^e^^ suc- 
ceeds, then the^^ *> 
fcftcate that the Virtual Smart Card is in-usa The VSC 
Server then permits the owner to use the Virtual Smart 
Card. When the Virtual Smart <^ owner performs a 
remove operation, the Virtual SrmrtCardofcattes itself, 
securely sends a remove request to the VSC Server, 
and then shuts itself down. When the VSC Server 
receives a remove request the VSC Server resets the 
Virtual Smart Card* state in the database to Ufa 
{0014] An alternative to the cornmunicetkxi between 
the Virtual Smart Card and the Virtual Smart Card 
Server is presented in claim 10. Tne A Vlr^j5ma^^id 
Reader cornrminjcates with a Donpje (a some other 
dupHcltiofr^ A duplication 

protected physical media has the property that it is 
exceedingly dHficuttfor an unauthorized attacker to con- 
struct a copy of the media. The virtual Smart Card is a 
copy protected program that executes only H permitted 
by the Dongle. If the end-user attaches the Dongte to 
the machine, then the virtual Smart Card executes; oth- 
erwise, the Virtual Smart Card stops. 
[0015] A special extension to the claimed Virtual 
Smart Card is to augment the user authentication 
mechanism with a reader-less authentication device. 
[0016] The advantage of this extension is excellent 
authentication at a tow cost. The benefit is that the Vir- 
tual Smart Card architecture effectively extends the 
functionality of the reader-less device to include encryp- 
tion. 

[0017] As claimed one promising application of Virtual 
Smart Card technology is ficense and copyprotection 
(LCP) . When the owner inserts his or her VTrtoal Smart 
Card. copyTprotectiarprop^ the 
ow!W<removesitr»i^ cow Pro- 

tected mgjSg^^^^^SmBn<^ acts 
as a "digital ignition key" trirt serves an analogous pur- 
pose to tf» igrtfon Hay in an automobile. A second 
promfcing application of Virtual Srnart tochnolw 
is Internet authentic a tion. A common architecture 
exploited by many of today* enterprises is a corporate 
tmrsnet connected to the Internet via a frewaJL tn tm 
architecture; an lntrariat-lo^ 
Virtual Smart -Cards to machines physfcaJy located 
behind the corporate firewal.Once an owner inserts his 
or her Virtual Smart Card, the owner can exploit the Vir- 
tual Smart Card's cryptographic services to securely 
connect to Internet servers, Extanets. or generate olg- 
itaf signatures. 

[0018] For a more complete understand^ of the 
present invention and tor further advantages thereof, 
reference is now made to the blowing Description of 
the Preferred Eitoftnent s taken in co nj unct i on wHh 
the acxornpanying Drawings in which: 

FIG. 1 is a block diagram of the present system 
architecture of the virtual smart card sys- 
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FK3L2 is a schematic representation of a master 
key executing protocol; 

FIG. 3 is a schematic representation of an enter- 
prise that operates a VSC Server behind its 
ftrewal; 

FIQ. 4 is a schematic representation of the states 
which a Virtual Smart Card can get 

FIQ. 5 is a schematic representation d the present 
system architecture of the virtual smart card 
system with a great deal of Virtual Smart 
Cards; 

FIQ. 6 is a block diagram of the insert operation of 
a Virtual Smart Card; 

FIG 7 is a schematic representation of a channel 
establishment between a Virtual Smart 
Card Server and a Virtual Smart Card; 

FIG. 8 is a block diagram of the authentication 
process ol a Virtual Smart Card; 

FIG. 9 is a detail of block diagram FIG. 8 showing 
the authentication! process tor user 
authentication; 

FIG. 10 is a schematic representation of a detail of 
block diagram FIG. 8 showing the imple- 
mentation authentication; 

FIG. 11 is a block diagram of the remove operation; 

FIG. 12 is a b4ock diagram of the recover operation; 

FIG. 13 is a block diagram of the entire corrvrunica- 
tion process b e twee n the Virtual Smart 
Card Server and the Virtual Smart Card; 

FIG. 14 is a block diagram of the method using 
oupHcaaon rrotecieo iweowi. 
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ing.Once the owner removes the Virtual Smart Card, 
the owner may travel to a dflerent machine and insert 
the Virtual Smart Card there. 
[0020] If the owner loses the Virtual SmartCard,t» 
owner executes a recover program The recover pro- 
gram prompts the owner for a password The recover 
program then provides a success a error code to the 
owner depending upon the state of the recovery. 
[0021] Both the insert and recover programs derive 
two symmetric keys from the owner's password. The 
programs compute a hash algorithm. a.g. MD5, Men- 
ezes, A., Oorschot P., and Venstone, S. f Handbook of 
Applied Cryptography, CRC Press. Boca Raton 1096. 
ever the password and a wel-known, hardcoded SALT- 
vt*ue. The first half of the hash result is an authentica- 
tion key and the second half of the hash result is a pro- 
tection toy. 

[0022] The purpose of the authentication key is to 
securely identify the owner to a VSC Server. The pur- 
pose of the protection key is to encrypt protected infor- 
mation that the Virtual Smart Card uploads to the VSC 
Server: and decrypt protected information that the Vir- 
tual Smart Card downloads from the VSC Server. The 
protection key ensures that no operator of the VSC 
Server can discover or modify a Virtual Smart Card's 
protected information. 



System Architecture 

30 [0023] Figurej illustrates the Virtual Smart Card 
architecture. Smart^card aware us^ aj^ication^^^ 
muniStSvwth trie-srt^^arcT via the DLLs of a smart 
card service prs*#gM!2&S^ 
2 relies uponjne ^T^S&^&^^^^L 

95 Manaoer"3^whlcrScOTn5^ Card 

10024] As opposed to a physical smart card reader.a 
Wtual Smart Card Reader 5 is virtual hardware acting 

tu^Sr^^rd 6. Addftionaily ^ Vjr toJ^mrt Card 



FIG. 15 is a block diagram of the present system 
architecture of the virtual smart card system 
using no network connection. 

IrrplementatiorVArchitecture 

Human Interface 

[0019] When a VrtualSmart Card owner executes the 
insert operation, a program prompts the owner for a 

password. When the owner executes the remove opera- 
tion, the Virtual Smart Card program stops execut- 



50 



S3 



[0025] A Virtual Smart Card 6 stores protected Infor- 
mation that it guards in terms of confidentiality and 

integrity. ^m^gpi^^jSIS^SS/BSl^S^ lntor " 
tiCfQBra'prrvsrt^key used for d^a^SgSriatures. 



poses. Other examples of protected inforrrattion include 
counters used in software rental applca tio o s , and confi- 
dential information used by healthcare providers. 
{0026] a*VQ£ASer^ 
tjonimfeidatabase^ 

tec^^s)f^hen a Virtual Smart Card owner inserts 
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a Virtual Smart Card 6, the VSC Server 8 downloads 
the protected ■ltonmlton; and when the owner removes 
a Virtual Smart Card 6, the Virtual Smart Card 6 
uploads the updated protected information to the VSC 
Server 8. 

Encrypted Memory 

[0027] Immedtatery after performing the insert opera- 
tion, the Virtual Smart Card 6 generates a new. tempo- 
rary symmetric key. Next the Virtual Smart Card 6 
decrypts the protected information using the protection 
key and re-encrypts the Wormatoi using the temporary 
key. When performing the remove operation, rf an 
update is required, the Virtual Smart Card decrypts the 
protected information using the temporary key and then 
re-encrypts the information using the protection key. 
The Virtual Smart Card 6 uploads the re-encrypted 
information to the VSC Server 8. 
[0028] During the relatively short periods in which the 
Virtual Smart Card 6 needs the protected information, 
the Virtual Smart Card 6 decrypts the information using 
the temporary key. Next the Virtual Smart Card 6 per- 
forms processing as required, rf the processing modifies 
the protected information, then the Virtual Smart Card 
re -encrypts the information using the temporary key. 
Finally, the Virtual Smart Card 6 zeros out the plain text 
image. The Virtual Smart Card 6 repeats this procedure 
each time that it uses the protected information. 

Volatile Memory 

[0029] The Virtual Smart Card 8 stores Ms encrypted 
protected information in vdatle memory (rwt shown) of 
the data processing unit or machine, eg. a personal 
corrputer. where it runs. Before the Virtual Smart Card 
6 exits, it eopfidtfy zeros out al of Hs voiatite memory 
used to store the protected information. 

Wired Memory 



(00301 A VrtuaJ Smart Card 6 wires the memory 
stores protected i nfo rm atio n . The wire operation 
dudes tie memory from being paged out to 
space. eg.atar^c^ofaperscxTaJcarTputer 

Polling 



[0031] A Virtual Smart Card 6 periodically polls its 
machine to ensure that an attacker has not copied the so 
Virtual Smart Card 6 to a drfterent machine. The Virtual 
Smart Card 6 stores a Machine Unique Key (MUX) in 
volatile memory. PerfocScaJry, the Virtual Smart Card 6 
obtains a new MUK from the machine. If the new MUX 
does not match the old MUK. then the Virtual "Smart 55 
Card 6 detects an attempted attack and exits. The MUK 
is a hash of information that uniquely identifies the 
machine, e.g., network address, machine name. 



number of sectors on each f tad cisK ends** of swap 
spec* 

[0032] The Virtual Smart-Card 6 performs a sinriar 
procedure using its Process ttX WtheNrTrtualSmarrCafd 

5 6 notices during poling that the queried Process 10 
does not match the stored Process ID, then the Vrtial 
SrrwtC>ud6irmiedatelye3<^ 
[0033] The Virtual Smart Card periocScaily polls its 
host machinefor the timed day. The virtual SmartCard 

10 6 compares its expectation wrth the resutt of the poaing. 
V the result does not reasonably match expectations, 
then the Virtual Smart Card 6 shuts teerf down by e«e- 
cuting the remove operation. For example, H the Vtrtial 
Smart Card 6 pots the machine a ppiox im a te ry every 

15 hour, then the Virtual Smart Card € would detect an 
error if the elapsed time between ruling exceeds ninety 
minutes. 



20 



25 



30 



Virtual Smart Card (VSC) Server 

[0034] Tht^VSCESSSfrr 6 is a trusted application 
which rnaijr^nsa o^tabase. tt has to supervise one or 
more VirtualSrrfirt Cads 6. In order to make the super- 
vision possible each Virtual Smart Card 6 has me fol- 
lowing records: 

Serial Mumber: The serial number is a unique iden- 
tifier of a Virtual Smart Card 6. 

State: The state variable stores exactly one of the 
toftowing values: in-use, idle, and destroyed, rf state 
has the value in-use, then the VSC Server 8 recog- 
rbestwt a Virtu* Smart Card6 has been inserted 
but not yet removed. The kSe state rndfcates that 
the virtual Smart Card 6 has been removed. The 
destroyed state indicates that the Virtual Smart 
Card 6 is no longer valid. The state of a destroyed 
Virtual Smart-Card -6 never changes. 

MUK: The MUK is a macNne unique key. If the 
state is eMheridfe or cloyed, then the MUK gels 
the NULL value. If the state is in-use, then MUK 
value gets the MUK of the currently executing 



Protected Information: The protected information 

contains information that the Virtual Smart -Card 6 

protects against attack. Examples of protected 
information are confidential encryption keys, or the 
state of dectronic counters. The owner's protection 
Key encrypts the protected information. Normally, 
the VSC Server 8 operators do not have access to 
an owner's pr o tection key. 

Protected Channel Into: If the state of a the Virtual 
Smart Card 6 is idle or destroyed, then the pro- 
tected channel into gets the NULL value. If the state 
is in-use. then the Protected Channel Into gets the 
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encryption key and other state information of a pro- 
tected channel through which the Virtual Smart 
Card 6 and the VSC Server 8 cotnmuni ca ta 

- Authorization kilo: The a u tho riza tion in formation 
stores al intormation required to authorize a WtuaJ 
Smart Card 6. &g., the hash of the authorization 
Key. An example hash algorithm is the so called 

MD5. 

List of Operations 
Insert 

[00351 The insert operation enables a Virtual Smart 
Card 6 on exactly one computer. The VSC Server 6 sets 
the state of the Virtual Smart Card 6 to in-use and 
refuses ail subsequent insert requests tor the same Vir- 
tual Smart Card 6 until the VSC Server 8 receives a cor- 
responding remove request. The following five steps: 
Channel Establishment. Authentication, Machine 
Unique Code. Machine Lock, and Download present the 
details: 

Channel Establishment 

[0036) Channel establishment builds a protected com- 
munication link between the Virtual Smart Card 6 and 
the VSC Server SQliie^e^ 

i s^l^ttrEportztey&se&Mtyzproto^^ e.g.CSecure 
SocfceTLayetSSL [SSLversion 3.0]. In this protocol, the 
VSC Server 8 has a well-known public key and a corre- 
spond^ confidential private key. The Virtual Smart 
Card 6 generates a new syTTwneaic key caJed a session 
key and encrypts the seeskxi key using the VSC 
Servers pubfic key. The VSC^erver 8 dscovers the 
sesswnrkey by;applytog:its private key. The protected 
ctiarw^ consists of infor ma ti o n ccmTuntoated between 
the two parties that is encrypted using the session key. 
Note that a good implemer^ 
nication channel. e.g.. SSL provides protection against 
cryptoanajysis, e.g., playback. 
[0037] The VSC Server 8 and the Virtual Smart Card 
6 use this protected channel tor all subsequent commu- 
nication m other words, theVSC Server 8 Jndjhe W- 
tuaJ Smart CwtTe encrypt eJ future : ccrorurications 
Wig!t»;ses6ibn key. The subsequent communication 
includes the insert operation and the remove operation. 
The session key disappears when the Virtual Smart 
Card program exits. 

Authentication 

[0038] The Virtual Smart Card 6 authenticates its 
owner and its own implementation to the VSC Server 8. 
The purpose of the owner authent i c a tion is to ensure 

that an attacker cannot steal someone else's Virtual 
Smart Card 6. The purpose of implementation authenti- 



cation is to ensure that an enactor cannot buid a leety 
Wtual Smart Card 6 emulator. Such a leaky emulator 
would be used by an attackar to authenticate as a real 
Virtual Smart Card 6 and subsequently 
5 tected Wormabon. 

User Authentication 

(00391 Uting a hash function, agv, MD5, denoted by 
io h, the Virtual Smart Card 6 computes hfi ut t mt h Ml on 
kwy). The Virtual Smart Card 6 uploads tie hash reeurt 
to the VSC Server 8. The VSC Server 8 authenticate* 
the Virtual Smart Card 6 orty rf the VSC Server 8 can 
validate the hash. 
is (0040] Since-^prc^rt cha^ infor- 
mation ccgir^^ Card 
6 and the VSC Setrver 8rthere is no posstoilty mat an 
attacker can steal the authentication key or its hash. 
The protected channel adcStionalry guards against cryp- 
to toanalysis attacks, ag. f playback. 

Virtual Smart Card Authentication 

[0041] The Virtual Smart Card 6 authenticates its own 
26 tnpternentatton using any or al of a variety of different 
techniques such as Embedded Shared Key; Keyfile 
Authentication and/or One-Time Algorithm as described 
below. 

3c Embedded Shared Key 

[0042] A shared key called Master is embedded into 
all Virtual Smart Cards 6. Each Virtual Smart Card 6 
proves that it has the Master key by executing trie proto- 

55 cd illustrated in Figure 2. Rrst, the VSC Server 8 gener- 
ates a unique random number rm1, and sends this 
random number rm1 to the Virtual Smart Card 6. Next 
the Virtual Smart Card 6 generates a second random 
number rm2 and computes tie hash. e.g.. MD5, of rml . 

40 rm2. and Master. The Virtual Smart Card 6 returns the 
random numbere rml. rm2. and the result of the hash to 
the VSC Server 8. The VSC Server 8 then recomputes 
the hash and compares tor equality. The VSC Server 8 
passes this authentication step rJ and eery H trie ccfipar- 

46 ison succeeds and thevTrtueJ Smart Card 6 returns tie 
correct hash result within a short time period, e.g.. 30 
seconds. 

[0043] The embedded shared key authentication step 
securely authenticates a Virtual Smart Card 6 only if the 

so Virtual Smart Card's Master key remains confidential. 
However, rf a hacker were to disassemble a Virtual 
Smart Card 6 and discover the Master, then the hacker 
could break the security of al Virtual Smart Cards. Asa 
result, the VSC Server 8 performs the second autism* 

55 canon step oescnoeo oeiow. 
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Keyfie Authentication 

(DOM] The Virtual Smart Card 6 obtains an Scense 
and copying protection (LCP)-cornptent kayfia which 
contains the Virtual Smart Cartfs public key and a con- 
fidential authentication string _«1._M : .jM»tA ran- 
dom number. ^tie^kayfBe^is algnad usmo^ie^SC 
Servers private key and is encrypted using a prophr 
tan/^ym^c aJcgn^in. Systems using a keyfito are 
laic^liafn^PiSr^ application EP9771001 1 .4. 
[0045] A software vendor locates the customer's pub- 
lic Keying materia) and embeds the customer* public 
keying materiaJinto a keyfie and sends thekeyfaetothe 
customer by electronic mal. Once the customer instate 
the keyfie, the protection mechani sm permits the cus- 
tomer to execute the protected software (provided that 
the customer can prove that he or she has access to the 
customer's private keying material via a probabilistic 
proof). The creation of the keyfiie is performed by a key- 
file generator, which is a program that executes at the 
vendor's tariSty. The vendor mu6t take care to guard this 
program 

[0046] The virtual Smart Card 6 decrypts the keyfie 
and vafetetes-tfte signature. Next, the Virtual Smart 
Card 6 decrypts andliiscovers the plaintext key as1 
Next, the VSC Server 8 and the Virtual Smart Card 6 
repeat the protocol described above in conjunction with 
Figure 2 with one exception. The VSC Server 8 and the 
Virtual Smart Card 6 substitute the confidential authen- 
tication string asl for the master key. 
[0047] The advantage of keyfiie authentication is that 
the attacker does not compromi s e all Virtual Smart 
Cards by breaking the security of a single keyfie. 
[0048] Any implementation of a Virtual Smart Card 6 
should authenticate itself using both forms of authenti- 
cation described above rf a high grade of security assur- 
ance is wanted. However, in order to provide the best 
security assurance, one should aotttionaHy implement 
the advanced form of authentication listed below. 

One-Time Algorithm 

[0049] The VSC Server 8 authentic ate s a Virtual 
Smart Card 6 with tie aid of mobile agents and auto- 
mated code generation. A mobile agent is an executa- 
ble code segment that passes between drfterent 

machines, e.g.. an Active X control. Automated code 
generation is vehicle by which one can generate a new 
executable at run-time. The automated code generator 
produces Virtual Smart Cards 6 according to a template 
which ensures that al Virtual Smart Cards 6 are identi- 
cal in aH but two respects: 

Authentication: Eat* Virtual Smart Card 6 has a 
unique authenticaS^f^^ 

• — accepts a randomly qenerateo^ and 

proo^ce«-~number as_pirtput^^ 

ble for derivihg a key used in a'symmetric encryp- 



ticti algorithm; &g* DES. • 

Wrapper: The portion of the VTrtual Smart-Card « 
executable that Implements f is encrypted (with a 

5 hardcoded symmetric key). Immediately before 
executing /, the Virtual Smart -Card 6 executable 
locates tie hardcoded key and performs the 
required decryption. The Virtual Smart -Card 6 
zeros out the plaintext implementation of / immedh 

10 atery after e x ecution 

[0090] At runtime, the V^ Server^ generates two 
random number*^ and y. TheV^Server8conpute« 
theioHowing result: 



where £ is a symmetric encryption function, eg., DES. 

20 x is a plaintext value, and f(y) is a value used to derive 
an encryption key In other words, the VSC Server 8 
computes w by encrypting x using the result of the com- 
putation f(y). The VSC Server 8 passes w andj^to the 
Virtual Smart Card 6 . Authentication succeeds only if 

25 -thejVjrjual 

lowing^tecT^ e.g., 
30 seconds: 

x = Diw,f(y)]. 

30 

That is, the Virtual SmartCard 6 decrypts w using a key 
derived from the result of the computation 4fc)- 
[0051] No two Vttual Smart Cards share the same 

35 function, /. Furthermore, no two installs of the same Vir- 
tual Smart Card 6 share the same function f . -Each 
irnpJementation of / should vary in ftormsof botfi opera- 
te* and parameters, ftothemiore, each 
tfon of / should be rather imposing from the perspective 

40 of a reverse engineering attack. An example epedflce- 
tfon of /is rxovided below: 

„„ mw S3SL. 

23 



50 

[0052] An imposing function, f t would frustrate an 
attacker. The VSC Server 8 can cMcMy generate the 
required impJementatfon given the aid of a good mathe- 
matics tod which automatfoafly generates "C impie- 
55 men ta ti o n s . For example, we specified tie example 
function, t. using -Wathcao", Hompage 
ref:http://www.rr«thsc^ - a<»mmerciafly 

available tool. Using this tool were able to generate ten 
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examples of imposing functions in just a taw minutes. 
Machine Unique Code 

[0083] After successful authentication, the Virtual 
Smart Card 6 generates a Machine Unique Key (MUK) 
and uploads the MUK to the VSC Server 8. The VSC 
Server 8 uses the MUK in the recover operation 
described in a totowing section. 

Machine Lock 

[0064] The virtual Smart Card 6 excrusrvery locks a 
well-known resource on the local machine. This lock 
ensures that only a single copy of the Virtual Smart 
Card 6 executes on the machine and its operational sys- 
tem at wy point in time. An example of a lock on Win- 
dows 95™ or Windows NT™ is an absolute path of a 
registry entry opened for exclusive access. The first Vir- 
tual Smart Card 6 to open the registry gets the lock and 
any subsequent Virtual Smart Card 6 process must wart 
until trie first process releases the lock In the event of a 
machine or process crash, the operating system auto- 
matically releases the lock. 

Download 

[0055] If the state of the Virtual Smart Card 6 as 
recorded in the VSC Server's 8 database is idle, then 
the VSC Server 8 resets the state to in-use; otherwise, 
the VSC Server 8 returns failure. Upon success, the 
VSC Server 8 downloads all of the Virtual Smart Card s 
protected information through the protected channel. 
This i nfor m ation potentiaHy includes con fi denti a l 
encryption keys, secured co u n te r s . 
[0066] At this point the Virtual Smart Card6hasbeen 
inserted and is ready for use. 



[0067] At any time after suocessfuly performing an 
insert operation, a Virtual Smart Card 6 may perform 
the remove operation (using the protected channel 
est^Bshed during the insert operation). First the Vir- 
tual Smart Card 6 cfstfxes itself by refusing al requests 
for services. Next the Virtual Smart Card 6 sends a 
remove request to the VSC Server 8 which uploads the 
protected information {encrypted using the protection 
key). Upon receipt of a remove request, the VSC Server 
8 resets its corresponding database entry to idle and 
returns a success ackricwledgrnent Next the Virtual 
Smart Card 6 unlocks the kxal machine lock, zeros out 
the protected information, and shuts itself down. 

Recover 

[0058] The insert/remove protocol does not prohfeit an 
owner from losing his or her Virtual Smart Card 6. If the 



insert operation succeeds but the ouiesuondiT g 
remove operation tais, then the VSC Server 8 confn- 
ues to mark the Virtual Smart Card 6 as Ithim de^pifa 
the tact that the outstanding Virtual Smart Card 6 no 

5 longer executes. The Virtual Smart Card 6 owner can 
request to return the state of the Virtual Smart Card 6 to 
iole by executing the recover operation. The constraint 
is that one must execute tie recover operation upon the 
machine that tost the Virtual Smart Card 6. 

io [00501 The recover operation begins using the same 
irvtiafzatk)n as the Insert operation Induolng channel 
e sta b ish ment authentication. MUK. and machine took. 
The VSC Server 8 checks that the provided MUK 
equate the MUK as stolid by the tost ins ert operation. If 

is the check succeeds, *en the VSC Server 8 reeelsthe 
state in the data base of the Virtual Smart Card 6 to irJe. 
[0060] The recover operation is secure because it 
ensures that no machine currently has an outstanding 
instance of the Virtual Smart Card 6. The MUK check 

20 ensures that the VSC Server 8 and the requesting 
machine agree upon the machine that last executed the 
successful insert operation. The machine lock ensures 
that this machine is not executing any other copy of the 
Virtual Smart Card 6. As a resutt the recover operation 

25 executes successfully only if no outstanding instance of 
the in-use Virtual Smart Card 6 exists. 
[0061 ] In rare cases, the Virtual Smart Card 6 protocol 
can lead to a catastrophic failure - a lost unrecoverable 
Virtual Smart Card 6. This state occurs when a Virtual 

30 Smart Card 6 cannot execute a recover operation. Fa 
example, consider a Virtual Smart Card 6 that executes 
upon a machine that exhixts a severe, catastrophic tei- 
ure such as an unrecoverable disk error. \n this case, rt 
is posstte that ftw MUK check could potenttaty taB 

95 when 1 should succeed 

[0062] In the case of a catastrophic taaure. the VSC 
Server 8 must deal with the same situation as a real 
smart card owner who physically loses his or her reel 
smart card Depending upon the VSC Server's 8 policy, 

40 the VSC Server 8 can choose how to issue the new Vir- 
tual Smart Card ^Applications of the Virtual Smart 
Card 

[0063] One may deploy Virtual SmartCard etechnd- 
ogy in almost any system that usee real smart cards. 
u This section presents some examples. 

Software Copy Protection 

[0064] The Software License and Copy protection 
50 system LCP prohibits software from executing unless 
an end-user can produce a licensed private key. A key- 
tie issued by the software vendor (or another author- 
ized party) encodes t» fcenee. Security 
counter measu res ensure that an attacker cannot forge 
55 a keyfite which contains a pubtic key At runtime, a copy 
protected program asks for a proof that the end-user 
has a licensed private key. The copy protected program 
validates the proof using the public key stored in the 
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keyfie. 

[0005] Some eocample appfcatkre of Software 
License and Copy protection system LCP using Virtual 
Smart Cards 6 are Isted below. 

- Try-Betore-Buy: Before purchasing an application, 
a potential customer obtains a Try-Before-Buy 
demo. The Keyfie for the demo permits limited 
usage in terms of either functionality or permitted 
executable period. HcpefuHy. 9 the potential cus- 
tomer likes the demo, then the customer subse- 
quently purchases the software. The software 
vendor connects a V9C Server 8 to the Internet or 
another network that alows access to many com- 
puters. Anyone can connect to the Internet when- 
ever he or she wishes, register with the software 
vendor, and obtain a unique Virtual Smart-Card 6. 
The vendor downloads a corresponding keyfile to 
permit the end-user to execute the program. 

Network PCs and Network Computers: In order to 
decrease the total cost of ownership of computers, 
enterprises are beginning to administer machines 
using a client/server architecture. Each client regu- 
larly obtains programs and maintenance services 
from the cenlral server. The server bears the 
responsibility of ensuring that each client runs cor- 
rectly. One can add VSC Server 8 functionality to 
the central server without any significant increase in 
overhead because the architecture requires a net- 
work connection anyway. 

Licensed Software Repository: An enterprise's cen- 
tral server stores a colectirjn of c^ 
grams. Employees download the programs from the 
central server onto their machines, If the employee 
wishes to execute a program, then the employee 
purchases a keyfie. The enterprise distributes pri- 
vate keys to employees guarded by Virtual Smart 
Cards 6. 

Network Authentication 

Intranet VSC Server 

[0066] The potential ap pfc cafo n s of Virtual Smart 
Cards 6 are not limited to software copy protection. Fig- 
ure 3 illustrates an enterprise that operates a VSC 
Server 8 in an intranet 1 1 behind a firewall 10 which pro- 
tects the intranet 11 from the internet 12. The purpose 
of the architecture is to deploy asynwietrfc cryptography 
throughout the enterprise without bearing the cost of 
smart cards. Some employees have a Personal (k*npu- 
ter PC. Each employee can use the services of his or 
her Virtual Smart Card 6 to authenticated to remote 
nodes, communicate via secured electronic mail, elec- 
tronically sign documents, or use copy protected pro- 
grams. 



10 



[0067] The security of the architecture sigrtficaiTfr 
exceeds the security employed by meet enterprises 
today because of the reduced dependence u pon pass- 
words. For most purposes, in leu of authenticating 
using a password, an enterprise employee can authen- 
ticate using hisarwtfrlualSmartC^ 
(9068) The weakest point in the architecture is the 
employee's autientication to the VSC Server a Uhh 
mate* the employee must suppry Nsjor herj«w«rd. 
Nevertheteas, one can optionaly^cofrfjouro a VSC 
Servec8^reo^:aS§^ 
*a. a property registered MUK. or coordination with an 
external authentication method such as tie Secure D 
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Internet Service Provider VSC Server 8 

[0069] An Internet Service Provider (ISP) is an ideal 
candidate for operating a VSC Server 8. When one of 
the ISPs customers connects to the ISP. thecustomer 
automaticaly inserts a virtual Smart Card 6; and at dis- 
connect time, the Virtual Smart -Card 6 automaticaly 
removes itself. The customer may subsequently exe- 
cute copy protected programs, securely access network 
services, and participate in electronic commerce. 
[0070] The ISP can provide the VSC Server 8 using 
minimal extensions to its existing customer database. 
With the exception of a little extra processing at cus- 
tomer login time, the Virtual Smart Card 6 service 
requires no ISP resources. 

Telephony over an Internet Protocol network(K323) 

[0071] The upcoming trend in enterprise toJqphony is 
to replace fractional telephone technology e.g.. PBXs 
with a telephone to LAN gateway. Enterprise «mptoyee6 
connect their telephones, picture prxx^ ar*J ajrnput- 
ers PC to their intranet 11; and a gateway connects the 
intranet to external networks such as the telephone net- 
work, the Internet 12. and Asynchronous Transfer 
Modus (ATM) networks* 

[0072] A gat ew ay and gatekeeper standard fra t jyo- 
videe telephony over an IrtemeeProtocdWrietworkis 
the H323. H323 defines a gateway that tanetatee F 
traffic to and ton me telephone network: and H323 
defines a gatekeeper tfiat mecfiatoa and helps route traf- 
fic through the gateway. Unfortunately, by connecting 
the intranet to both the telephone network and the Inter- 
net, the enterprise unwittingly creates one of the most 
valuable resources potentially available to a hacker. 
Consider, lor example, a hacker who breaks through the 
enterprise's Internet firewal 10 and aco e saes the 
intranet 11. This hacker may potentialyplacatatephona 
calls from this intranet 11 thereby txittng a telephone 
gateway to the world. 

[0073] Virtual Smart Card 6 technology can provide 
an important counter measure to such an attack. By 
implementing support for asymmetric authentication in 
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the K323 gateway and gatekeeper, the system can 
effectively preclude Internet hackers from placing phone 
cats. The idea is that the hacker cannot obtain a Virtual 
Smart Card 6 with the required private keys and as a 
result cannot authenticate to tie gateway and gate- 
keeper. 

Description of Embodiment of Invention 
States 

[0074] Figure 4 tartrates the states of the Virtual 
Smart Card (VSC) system. When a Virtual Smart Card 
6 is created, its state is icfte 101. When a Virtual Smart 
Card owner executes an insert operation 104, the state 
changes to in-use 102. Also, » the current state is idle 
101, the destroy operation 107 changes the state to 
destroyed 103. When currently in the in-use 102 state, 
the remove 105 operation and the recover 106 opera- 
tion change the state to idle 101 . Also, when currently in 
the in-use 102 state, the destroyed 107 operation 
changes the state to destroyed 103. 

Architecture 

[0075] Figure 5 illustrates the architecture of the Vir- 
tual Smart Card system. One or more Virtual Smart 
Cards 6 attach to a computer network 7. No assump- 
tions are made concerning the security of the computer 
network 7. A Virtual Smart Card server 8 also connects 
to the computer network 7. 

[0076] The Virtual Smart Card operations are 
described below. 

Insert (104 Figure 4): 

[0077] The insert operation 104 illustrated in Figure 6 
changes the state from kJe 101 to in-use 102. First the 
insert operation 104 executes a channel establishment 
step 301. The channel establ ish men t step 301 estab- 
lishes a protected channel between the VSC Server 8 
and the Virtual Smart Card 6. Al subsequent cornmuni- 
cation between the VSC Server 8 and the Virtual Smart 
Card 6 is throuoh this protected channel. The authenti- 
cation step 302 authenticates both the Virtual Smart 
-Card 6 owner and the Virtual Smart Card 6 i mptemenla- 
tion to the VSC Server 6. » the authentication step fails, 
then the Virtual Smart Card 6 exits 306 (and does not 
change the state). H the authentication step succeeds, 
then the Virtual Smart Card 6 computes a Machine 
Unique Key (MUK) 303 and uploads the MUK to the 
VSC Server 8. Next the Virtual Smart Card 6 grabs an 
exclusive machine lock 304. Next the Virtual Smart 
Card 6 requests mediation 305. & the mediation 305 
taite, then the Virtual Smart Card 6 exits 306<anddoes 
not change the state). Otherwise, the VSC Server 8 sets 
the state of the Virtual Smart Card 6 to in-use 102. 
Upon receipt of a positive acknowledgment from the 



VSC Server, the Virtual Smart Card 6 enables tee* tor 
future use. 

Channel Estafafehment(301 Figure 6): 

5 

[0078] As shown in Rgura 7 the VSC Server 8 has an 
asymmetric private key 401 that the VSC Server 6 
keeps oorfidertteL The VSC Server 8 pubfisheathecor- 
responcfing pubfic key 404 to everyone. The VSC Server 

io 8 gener a te s a random number, n 402, and sends rl 
402 to the Virtual Smart Card 8. The Virtual Smart Card 
6 generates a second random number rZ The Virtual 
Smmrt Card 6 generates two adcftkml random num- 
bers used as session keys, s1 and s2. The Virtual 

is Smart Card 6 encrypts r1, r2, s1, and s2 using the pub- 
6c key 404. The Virtual Smart Card 6 sends r2 and the 
encrypted result to the VSC Server 8. Neither the VSC 
Server8ortrwVrrtuaJSrr«rt(^6cksdo6e6l ors2to 
other parties. Until the Virtual Smart Card 6 exits, all 

20 subsequent cornmunications are encrypted using a 
symmetric encryption algorithm, e.g., DES, using the 
session key 61. F urt her m o re ; afl oonrtwun ica bons are 
hashed (e.g., MD5) together with session key s2. The 
recipient validates by re-«)mputing the hash The pur- 

25 pose of the hash is to ensure that no attacker modified 
the communication in-transit. 
[0079] Note thai in lieu of the protocol described 
above, one can potentially substitute a SSL or some 
other appropriate transport layer security protocol. 

30 

Insert request (309 Figure 6): 

[0080] The Virtual Smart Card 6 sends a message to 
the VSC Server 8 requesting an insert operation. 

Authentication (302 Figure 6) 

[0061] As srwwn in Figure 8 trie Virtijal SmartC^ 
sends its unique serial number 508 to the VSC Server 

40 8. The VSC Server refects any other operations (insert, 
remove, recover, destroy) wtti this same serial number 
until this entire Insert operation 104 exits. Upon exit, Ws 
Insert operation either does not change the stale or 
changes the state to irvuse. 

46 [0062] Authentication 302 requires the Virtual Smart 
Card 6 owner to authenticate him or herself using at 
least one method 501 . 

[0083] However, the system may additionaly imple- 
ment two or more independent methods (represented 

so by 502). Tne Virtual Smart Card 6 authenticates its own 
implementation {distinct from the owner's authentica- 
tion) 503. The Virtual Smart Card 6 may cpttonaly 
authenticate its incrementation using additional inde- 
pendent methods 504. 

65 [0064] The VSC Server 6 mecSates to ensure that all 
auth e ntication s are successful 505. H any authentica- 
tion toils, then the VSC returns a failure and does not 
change the state. Otherwise, the VSC Server 8 returns 
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a success cod* and continues processing the Insert 
operation 104. 

User Authentication (50 1 Figure 8) 

[0065] Muthpte mechanisms exist for authorizing a 
user (smart card owner). One such mechanism is flrus- 
trated in Figure 9. The smart card owner enters a pass- 
word 601 (a confidential string). The VirtuaJ Smart Card 
6 prog/am extracts a cortideritiaJ value caled SAtJ 602 
from its own executable. Al Virtual Smart Card 6 pro- 
grams have the same SALT 602. The Virtual Smart 
Card 6 program computes 603 the MD5 hash algorithm 
over the password 601 and the SALT 602. The result is 
a 128 bit value. The Virtual Smart Card 6 program 
extracts the first 64 bits and names these bits the 
authentication key 604. The Virtual Smart Cad 6 pro- 
gram extracts the second 64 bits and names these bits 
the protection key 605. 

(0086] The Virtual Smart Card authenticates the 
smart card owner by proving to the VSC Server that the 
Virtual Smart Card knows the authentication key. The 
simplest such "proof is to simply send the authentica- 
tion key to the VSC Server. Since the communication 
channel is protected 301, one need not be concerned 
with an intruder who listens tor passwords. The VSC 
Server simply validates the authentication key against 
its internal table. More complex password authentica- 
tion schemes also exist [Menezes. A.. Oorschot P.. and 
Vanstone, S., Handbook of Applied Cryptography. CRC 
Press. Boca Raton 1996] 

Irrxxemeritation Authentication (503 Figure 8) 

[0067] MuHjpla mec ha n is ms exist tor authenticating 
the VirtuaJ Smart Card's inplemertation. One such 
mechanism is Mustrated in Figure 10. The VSC Server 
8 generates a new. uniope random nurnber ri1 701. The 
VSC Server 8 sends ri1 701 to the Virtual Smart Card 6. 
The Virtual Smart Card 6 has a confidential Master key 
702 embedded within the VirtuaJ Smart Card 6 executa- 
ble image. Afl Virtual Smart Cards 6 have the same 
Master Key 702 embedded within their own executable 
The Virtual Smart Card 6 generate s a new. unique ran- 
dom number ri2 704. The Virtual Smart Card 6 com- 
putes the hash. e.0.. M05. of ri1 701. ri2 704. and 
Master 702. The Virtual Smart Card 6 returns ri2 704 
and the result of the hash to the VSC Server. The VSC 
Server 8 recomputes the hash using ril 701 and r!2 
704. M the recomputed hash matches the value returned 
by the VirtuaJ Smart Card 6 then the aorthentication step 
succeeds. This authentication step proves to the VSC 
Server that the Virtual Smart Cards knows the Master 
Key. An attack* cannot build a rogue inrpiementation of 
a Virtual Smart Card without first disassembling a Vir- 
tual Smart Card and discovering the Master Key. 



Machine Unique Key MUK (303'Rcjjre 6): 

[0068] Tha Virtual-Smart Card 6 cor^^ 
ur^key(MUK)3Q3drtskxd 
5 tuaJSmart Card 6 extracts the tolowino vahies from its 
rmchine: the network address, the machine's name, the 
currently logged in user frl appicabie). and the nurrfcer 
of sectors on each fixed drive. The MUK 303 is the hash 
of all of the extrac t eo ■wjunauon. 
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Machine Lock (304 Figure 6): 



[0069] The Virtual Smart-Card 6 opens a wel-known 
path tor exclusive access in the local rrw^taxjstry. 

15 The registry is a resource available in Windows 95™ or 
Windows NT™ with separately Identified items. The 
same wel-known path is hardcoded into every imple- 
mentation of a Virtual Smart-Card 6 program. Only one 
VirtuaJ Smart Card 6 program at a time can open the 

20 path for exclusive access. 

[0090] One rrwy irrptement a Virtual Smart-Card 6 to 
execute on a machine other than Windows 95™ or Win- 
dows NT™. In this case, in lieu of the registry, the Virtual 
Smart Card 6 obtains exclusive access to some other 

25 well-known resource, e.g.. a file. The idea is that the 
well-known resource helps cooperating Virtual Smart 
Cards 6 ensure that only one Virtual Smart Card 6 exe- 
cutes on a machine at a time. 

30 Mediation (305 Figure 6): 

[0091] The VSC Server 8 looks up the Virtual Smart 
CM6infheVSCServei'68dBlat)eMusirxjt)eSerU 
Number provided during Authentication 302. If the stale 

55 of the Virtual Smart Card 6 is not kSe then the VSC 
Server 8 refuses the request and returns a negative 
adgrtowtodgment The Virtual Snwt<^ 6 then exlta. 
[0092] If tie state of the Virtual Smart-Card^ ktto. 
then mediation succeeds and the VSC Senor 8 pro- 

40 ceeds to setting the state of the Virti^SrnartCardOto 
in-use307. 
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Set state to irvuse (307 Figure 6): 

[0093] The VSC Server 8 updatee the record in the 
VSC Servers database lor the Virtual Smart-Card 6 by 

setting the state to in-use. 

Enable and download (308 Figure 6) : 



(0094) The VSC Server 8 returns a positive ecknowt- 
edgment and the Virtual Smart Card 6 begjm servicing 
its owner. The VSC Server 8 also downloads informa- 
tion that is protected using the protection key 605. The 
55 Virtual Smart Card 6 uses the protection key 605 to 
decrypt. Subsequently, the Virtual Smart Card 6 can 
access the protected information. 
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Remove (105 Flgurt 4): 

[0(»51 AstfiowninfigureH first the Virtual Smart 
Card 6 disables itself 801. Once drsaWed. the Virtual 
Smart Card 6 provides no services to its owner (other 
then c o mp l e ti ng the remove operation 105). First, the 
Virtual Smart Card 6 estabishes a protected channel 
301 with the VSC Server. The cunnuiicaJion required 
lor the remainder of the reaver operation 106 passes 
through the protected channel. Second, the Virtual 
Smart Card 6 sends a remove request and the Virtual 
Smart Card* serial number to the VSC Server. The 
VSC Server rejects any other operations (insert, 
remove, recover, destroy) with this same serial number 
until thts entire Remove operation 105 exits. The VtrtuaJ 
Smart Card 6 extracts its own protected information and 
encrypts 803 the information using its protection key 
605. The Virtual Smart Card 6 uploads 804 the 
encrypted, protected information to the VSC Server 8. 
The Virtual Smart Card 6 releases 805 the machine toe* 
304. The Virtual Smart Card 6 sends a request for 
removal 806 through the protected channel 301. The 
VSC Server 8 sets the state of the Vrtual Smart Card 6 
to idle 101. 

Recover (106 Figure 4) 

[0096] The recover operation is illustrated in Figure 
12. The Virtual Smart Card 6 first establishes a pro- 
tected channel 301 . The communication required for the 
remainder of the recover operation 106 passes through 
the protected channel. The Virtual Smart Card 6 sends 
a recover message 901 to the VSC Server. The Virtual 
Smart Card 6 sends the VtrtuaJ Smart Card* serial 
number to the VSC Server. The VSC Server rejects any 
other operation s (insert, remove, recover, destroy) with 
ttts same serial number until this entire Remove opera- 
tion 105 exits. The recover operation 106 performs 
authentication 302. H the authentication fais, then the 
recover operation 106 exits 306 leaving the state 
unchanged. If the a u thentication 302 succeeds, then 
the Virtual Smart Card 6 uploads fte MUK 303. Next, 
the Vrtual Smart Card 6 grabs the Machine Lock 304. 
Next, the Virtual Smart Card 6 requests that the VSC 
Server 6 perform mediation 902. If the mecfaion 902 
fate, then the virtual Smart Card 6 releases the 
machine lock 904 and exits leaving the state 
unchanged. If the mectetion 902 succeeds, then the 
VSC Server 8 sets 903 the state of the Virtual Smart 
Card 6 to idle 101. The Virtual Smart Card 6 then 
releases the machine lock 904 and exits. At this point 
the state of the virtual Smart Card 6 is suitable tor axe- 
cuting an insert 104 operation. 

Medurtton902 

[0097] The VSC Server 8 looks up the Virtual Smart 
Card 6 in the VSC Server s 8 database using the Serial 



Number provided during AulherticationSfA Ifthestata 
of the Virtual Smart Card 6 Is not m-use twitheVSC 
Server 8 refuses the request and returns a negative 
acknowledgment leaving the state unchanged. The W- 
5 tueJ Smart Card 6 then exits. 

Destroy (107 Figure 4) 

(0096] The Virtual Smart Card 6 first estabfishesa 
10 protected channel 301. The communicafion required tor 
the remainder of the Destroy operation 107 passes 
through the protected channel. The Virtual Smart Card 
6 sends a desfroy message to the VSC Server. The Vir- 
tual Smart Card 6 sends the Virtual Smart Card's serial 
16 rurrtoer to tw VSC Server. The v^ 

other operations (insert, remove, recover, destroy) with 
this same serial number urrS this entire Destroy opera- 
tion exits. The VSC Server 6 marks a Virtual Smart 
Card 6 as destroyed The VSC Server 8 refuses to proc- 
20 ess any further insert, remove, or recover requests tor 
the destroyed Virtual Smart Card 6. 

Virtual Smart Card Internals 

25 [0099] As shown in figure 13 in the enable and down- 
load step 308 of the insert operation 104. the Virtual 
Smart Card 6 obtains protected information. The Virtual 
Smart Card 6 stores this protected information in a 
manner that cannot be manipulated or discovered. Even 

30 the Virtual Smart Card's owner cannot access the pro- 
tected information through any vehicle other than the 
Virtual Smart Card's interface. 
[Oioo] Through the protected channel 301, the VSC 
Server 8 downloads protected in torrnation 308 to tie 

36 Virtual Smart Card 6. The virtual Smart Card 6 gener- 
ates 1002 a new, unique symmetric key cased tamp. 
The virtual Smart Card 6 decrypts 1003 the protected 
infor ma tion obtained from the VSC Server 8 using fte 
protection key 605 derived from the VirtuaJ Smart Card 

40 6 owner's password 601. The Virtual Smart Card 6 
encrypts 1004 the protected information using the tem- 
porary 1002 symmetric encryption key. The VirtuaJ 
Smart Card 6 writes 1005 zeros over tie memory that 
tattsihectoartaodimaQesoftr^ 

46 The Virtual Smart Card 6 stores 1006 the protected 
information (encrypted with temp 1 002) in wired, virtual 
memory. The Virtual Smart Card 6 writes ateros over any 
other locations that store the (encrypted) protected 
information. If the Virtual Smart Card 6 owner requests 

so 1007 to perform the remove operation 105. then the Vir- 
tual Smart Card 6 performs the remove operation 105. 
Otherwise, if the Virtual Smart Card 6 owner requests 
processing that uses the protected Wormaion, then tie 
VirtuaJ Smart Card 6 decrypts 1008 tie protected Wor- 

65 rnebon and stores the result intemaJry. Next the VtrtuaJ 
Smart Card 6 performs the requested operation 1009. If 
the processing dti not update the protected information, 
then the Virtual Smart Card 6 zeros out the plaintext 
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image of the protected information 1011. Otherwise, if 
the processing updated to protected in fo r m ati o n then 

of the protected information ueing temp. The Virtual 
Smart Caid 6 overwrites the old version of the protected 
i n for mati on. 

[0101] In the following some modfflcatione are 



Copying 

(0102] The adm i n i strato r of the VSC Server 8 can 
potential make multiple copies of a single Virtual 
Smart Card 6. The a dmin i strator shyly buBds entries in 
its datrtase for new Virtual Smart Cards 6 but copies 
the same information in each entry. 

Implementation not requiring a VSC Server 

[0103] In Figure 1. the Virtual Smart Card Reader 5 
comm uni ca te s with the VSC Server via the Network 
However, one may potentially change the architecture 
such that the Virtual Smart Card Reader 5 does not 
communicate with the VSC Server 8 via the Network. 
Instead, the Smart Card Service Provider 2, the Smart 
Card Resource Manager 3, the Reader Helper Driver 4. 
or the Virtual Smart Card Reader Driver 9 could poten- 
tially communicate via the VSC Server 8 via the network 
while providing the same network services as described 
in the embodiment of the invention. 
[0104] Figure 1 5 illustrates an alternative irnpiemertta- 
fon of the Virtual Smart Card 6. This implementation 
does not require a VSC Server a 
[0105] Instead of comm u nicat in g with the Virtual 
Smart Card Server 8 the Virtual Smart Caid Readers 
comm un icate s with dupBcatforvprotected physical 
media. e.g.. a Dongie 1101. A duplication protected 
physical meefia 1101 has the properly that it is exceed* 
ingiy oHBcutt tor an unauthorized attacker to construct a 
copy of the media 1101. The Virtual Smart Caid 6 is a 
copy protected program that mcutes only rf permitted 
by *e Dongie 1 101. If the end-user attaches the Dongie 
1 101 to the machine, than the Virtual Smart Ca/d6exe- 
cutes: otherwise, the Virtual Smart Card 6 stops. 
[0106] The states and state tansitions of the Virtual 
Smart Card Bare ifcjstrated and described in relation to 
Figure 4. 



Idle 101: The Virtual Smart Card 6 does not 
cute The virtual Smart Card 6 cannot validate the 
Derate 1101. Poeafcly. the Dongie 1101 is not cur- 



Destroyed 103: The Dongie 1 101 that authorfcae a 
machine's WtualSmartOa«« has been destroyed 
or lost 

0 10107] The operations of the Virtual SmartOwJ 6 are 
descrfoed below: 

Insert 104: The enck*er attaches the Dongie 1101 
and boots the Virtual Smart Card 6 program. The 

w Virtual Smart Card 6 program does not operate 
unless the Virtual Smart-Caid S program canvafr- 
date that the Dongie 1101 is present The state of 
the Virtual Smart Card 6 is in-use 102 after the Vir- 
tual Smart -Card* detects the Dongie 1101. This 

15 slate is not expfcttfy recorded as in the case with 
the VSC Server* 

Remove 105: The Dongie 1101 fails to authorize 
the Virtual Smart Card 6. For example, the end- 
20 user either removes the Dongie 1 101 , or the Virtual 
Smart Caid 6 shuts down. The state is idle 101 
after the Dongie 1 101 is removed. 

Recover 106: It the end-user loses his or her Dorv 
25 gle 1 101 , then the end-user can request a replace- 
ment from the Dongie 1101 issuing authority. 
Presumably, the authority that first placed the 
encryption key on the Dongie 1101 remembers the 
Dongle's key. The state is idle 101. once the end- 
30 user obtains a new Dongie 1101. 

Destroy 107: The Dongie 1101 is lost or physicaly 
destroyed. The stale is Destroyed 103 after the 
Dongie 1101 is physicaly tost or destroyed. 

35 

[0108] VVh^ the Virtual Smart Card 6 is We 101,^ 
Dongie 1101 stores the protected information. The Don- 
gie 1101 has two storage locations. The first storage 
location stores the Donflfe 1 101 key (see Figure 1 4) and 
40 the second storage location has the protected Worma- 



In-Use 102: The Virtual Smart Card 6 is executing. 
The Virtual Smart Card 6 perkxficaBy communi- 
cates with the attached Dongie 1101 as illustrated 
and described in relation to Figure 14. 



[0109] The protected information is encrypted using a 
symmetric encryption key cafied VSC-Ke* When the 
Virtual Smart Caid 6 boots, the Virtual Smart -Card 6 
46 executes the insert operation. Ufron suc cessfu l comple- 
tion of the insert operation, the Virtual ^Smart-Cwd 6 
enters the in-use 102 state. 

[0110] When the virtual Smart Card 6 is in the irvuse 
102 state, the Virtual Smart Card 6 obtains protected 

so information. Normal* the Virtual Smart Card 8 stores 
this protected I n fo r m at ion on the Dongie 1101 In 
encrypted form. Whence Virtual Smart Card 6 wishes 
to obtain the protected information, the Virtual Smart 
-Card 6 retrieves the protected WormationfromtheOon- 

5$ gle 1101. The Virtual SmartCod* uses a Master key 
to decrypt the protected information. The Master key is 
hardcoded into the Virtual Smart Card's 6 executable 
image. The virtual Smart Card 6 stores its protected 
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information in encrypted, wind memory. 

[0111] Whereas the presort invention has been 

deecrtoedwtthrespedtoJpecfo 

n; is intended to enccrrpass such c^ 

tions as U within the scope of the appended claims. 

Claims 

1. VirtuaL3mrt^^ 

vwrte with sew computers ociim 
Smart Card specific records, network connections 
allowing confidential data exchange and dent com- 
puters running a secure operating system, process- 
ing the following i 



tuaJ Smart Card is lost 

8. Using of a Virtual Snr*rt Card Sv^^ 

7 tor license and copy protection (LCP). 

5 

9. IWng da Virtu* Smart Card System ofdeJmslto 

^ * - - « * - » - *!jhlI!_tlji 

7 lor internet auinenucauun. 

m Virtual Smart Caid System for data processing 
10 ted toes with c^Kcatlon-protected physical media 
(1101) acMNstrating Virtual Smart Card specific 
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Virtual Smart Card program sends a insert 
information to the Virtual Smart Card (VSC) 
Server; 

VSC Serverseno^^ 
WCafSml^C^rd; 
Virjualj&m^ 
Hey; 

Virtu ^Smart Cardzde oy^tt^ 
inforrnirfbn:ush>a o 
VimialrSmarTCardrerj^ 

Virtual Smart Card operates like a real smart 
card; 

Virtual Smart Card sends a remove information 
to the Virtual Smart Card Server and erases all 
protected information of the session. 

L The Virtual Smart Card System of daim 1 wherein 
the insert i n form a tio n contain a aumento^pro- 
C cedure. 35 

I The Virtual Smart Card System of daims 1 to 2 
wherein the protected information comprises 
alnraa onejrf jhe blowing informations;^ :pm*te 
i^ used 1c7 ^ ^ decr y ption, key *o 

inanagement, etc; counters used in software rental 
appMcabone, and confkJential information. 

k The Virtual Smart Card System of daims 1 to 3 
wherein tie temporary key is a symmetric key. 45 

i. The Virtual Smart Card System of claims 1 to 4 
wherein the user authentication mechanism aug- 
mented with a reader-less authentication device. 



6. The Virtual Smart Card System of daims 1 to 5 
wherein the Virtual Smart Card decrypts the pro- 
tected information rf processing as required and re* 
encrypts the protected information if the processing 
has modified ri- 



se 



55 



exchwge and computers running a sscure 
ing system, processing the Wiowing steps; 



Virtual Smart Card program sends a insert 
information to the dupiicatfon-protected physi- 
cal mecSa (1101); 

dupicatfon-protected physical media (1101) 
sends protected information to the Virtual 
Smart Card; 

VirtuaJ Smart Card generates a new temporary 
key; 

Virtual Smart Card decrypts the protected 
info r ma ti on using a owners password; 
Virtual Smart Card encrypts the protected 
information using the temporary key; 
Virtual Smart Card operates like a real smart 
card; 

VirtuaJ Smart Card sends a remove information 
to the duplication-protected physical media 
(1 101) and erases all protected information of 
the i 



7. The Virtual Smart Card System of claims 1 to 6 
wherein a recover process can be started if the Vir- 
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